This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/0feedd18-2b71-48d5-a2ee-07ca90b4d203.roa File: 0feedd18-2b71-48d5-a2ee-07ca90b4d203.roa (raw, json) Hash identifier: 2CQIyj2mOYB3W5uiPzeF9M1KLI18tWhFad/KxNC477M= Subject key identifier: F4:97:D3:13:10:BE:E8:A7:7C:24:BC:8D:1D:D0:24:22:52:4F:99:D0 Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 3B52F74A8DD4FCD3608EF0BD4C836D523B5A06D8 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/0feedd18-2b71-48d5-a2ee-07ca90b4d203.roa Signing time: Wed 12 Nov 2025 00:00:16 +0000 ROA not before: Wed 12 Nov 2025 00:00:16 +0000 ROA not after: Wed 17 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 240f:8014:800::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:10:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:52:f7:4a:8d:d4:fc:d3:60:8e:f0:bd:4c:83:6d:52:3b:5a:06:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Nov 12 00:00:16 2025 GMT Not After : Dec 17 23:59:59 2025 GMT Subject: serialNumber=de309890791d0b2b79f41b5bbcca09ccc97df8bcf21eb951eeea55d1e5fa174a, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:b4:e5:5a:e3:04:78:d7:d6:79:12:af:e4:4d: d6:4d:99:8f:47:06:65:87:2c:07:0a:a0:a3:5f:51: bf:bb:80:79:0f:56:ee:ec:28:89:34:27:f5:70:12: 73:40:a1:c7:23:d9:b5:05:94:a8:93:2c:83:3a:30: 16:44:8b:02:67:9e:18:87:16:7b:3c:b7:7b:09:4b: e9:ac:5b:88:7b:c3:47:17:3c:c9:e8:ca:94:db:c3: 34:15:1d:57:cd:47:d2:68:46:27:92:6c:28:20:33: 65:51:74:a2:d4:e8:67:6f:be:53:82:53:2a:4b:f9: eb:3f:a7:f7:18:80:0f:79:ee:47:0a:d1:d7:f5:9f: 88:f6:0e:32:1e:28:63:1f:68:d6:4b:e4:75:99:98: af:c0:10:2a:41:29:c5:20:bd:58:21:80:92:38:87: 97:2b:bd:46:df:52:86:68:e7:b7:0d:45:c2:ef:6f: 77:75:3b:94:f3:07:b5:8c:58:ce:87:51:9e:31:93: f0:1f:4c:67:27:66:ff:bc:6c:2f:dd:d0:1b:d4:90: cc:ce:ab:fc:51:33:60:41:e7:81:8d:b0:37:87:45: 10:48:3c:40:d5:a7:f1:83:c8:aa:18:d3:85:1a:96: e7:dc:f7:b5:68:bb:12:fa:7c:a6:53:e6:67:3b:cd: 71:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:97:D3:13:10:BE:E8:A7:7C:24:BC:8D:1D:D0:24:22:52:4F:99:D0 X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/0feedd18-2b71-48d5-a2ee-07ca90b4d203.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:8014:800::/38 Signature Algorithm: sha256WithRSAEncryption 7e:ca:c1:c2:58:a3:0f:dd:f6:03:8e:ad:4d:d2:79:48:19:92: 5e:79:01:46:97:9f:e9:e3:42:1c:9c:79:7a:1b:2b:bd:b5:a6: 52:4e:8d:f6:23:b9:f6:11:83:b7:c2:06:c2:19:89:10:99:6e: f2:77:4f:e3:8e:7f:34:e4:10:4a:ab:da:61:8a:73:34:c1:6c: 75:88:fb:77:95:82:d5:25:fa:70:ab:ca:de:5f:19:e0:d9:02: b0:40:fb:47:c9:82:df:b1:76:66:db:eb:f6:8a:48:07:d5:8d: 8b:b2:b2:7e:22:8d:43:90:9d:32:05:1a:a8:04:b2:c1:19:82: 74:34:ce:e0:6a:aa:9e:c3:a0:c2:f6:47:f5:b8:3d:da:80:35: 0d:99:9c:bb:d2:13:c2:b6:3b:e7:98:9d:55:eb:b8:dc:5c:08: 0b:08:cb:80:d0:7c:09:03:9a:0e:0f:b1:c0:07:21:a9:67:87: 0b:a7:77:2c:3e:cc:0f:71:50:40:17:c4:bf:3f:f6:ce:59:0e: 36:15:b4:01:93:7c:f2:1b:9b:50:7d:bb:c9:94:10:69:1e:5a: 29:af:3e:0b:7c:64:0c:92:0f:6a:62:0a:dd:4a:22:4c:06:7f: 6f:b9:a6:71:67:f1:b1:ae:62:68:ba:46:03:33:65:55:58:ef: b0:f9:1d:2b -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUO1L3So3U/NNgjvC9TINtUjtaBtgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI1MTExMjAwMDAxNloX DTI1MTIxNzIzNTk1OVowejFJMEcGA1UEBRNAZGUzMDk4OTA3OTFkMGIyYjc5ZjQx YjViYmNjYTA5Y2NjOTdkZjhiY2YyMWViOTUxZWVlYTU1ZDFlNWZhMTc0YTEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuLTlWuMEeNfWeRKv5E3WTZmPRwZl hywHCqCjX1G/u4B5D1bu7CiJNCf1cBJzQKHHI9m1BZSokyyDOjAWRIsCZ54YhxZ7 PLd7CUvprFuIe8NHFzzJ6MqU28M0FR1XzUfSaEYnkmwoIDNlUXSi1Ohnb75TglMq S/nrP6f3GIAPee5HCtHX9Z+I9g4yHihjH2jWS+R1mZivwBAqQSnFIL1YIYCSOIeX K71G31KGaOe3DUXC7293dTuU8we1jFjOh1GeMZPwH0xnJ2b/vGwv3dAb1JDMzqv8 UTNgQeeBjbA3h0UQSDxA1afxg8iqGNOFGpbn3Pe1aLsS+nymU+ZnO81xFQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFPSX0xMQvuinfCS8jR3QJCJST5nQMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 LzBmZWVkZDE4LTJiNzEtNDhkNS1hMmVlLTA3Y2E5MGI0ZDIwMy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYCJA+AFAgwDQYJKoZIhvcNAQELBQADggEBAH7KwcJYow/d9gOOrU3S eUgZkl55AUaXn+njQhyceXobK721plJOjfYjufYRg7fCBsIZiRCZbvJ3T+OOfzTk EEqr2mGKczTBbHWI+3eVgtUl+nCryt5fGeDZArBA+0fJgt+xdmbb6/aKSAfVjYuy sn4ijUOQnTIFGqgEssEZgnQ0zuBqqp7DoML2R/W4PdqANQ2ZnLvSE8K2O+eYnVXr uNxcCAsIy4DQfAkDmg4PscAHIalnhwundyw+zA9xUEAXxL8/9s5ZDjYVtAGTfPIb m1B9u8mUEGkeWimvPgt8ZAySD2piCt1KIkwGf2+5pnFn8bGuYmi6RgMzZVVY77D5 HSs= -----END CERTIFICATE-----Generated at Sat Dec 6 22:36:21 2025 by rpki-client